Now, only your devices hold the keys to most iCloud data, including backups, photos, and notes, preventing even Apple from accessing it
California: Apple continues its push for robust user privacy with the introduction of Advanced Data Protection for iCloud, an optional yet pivotal security feature designed to provide users with an unprecedented level of control over their cloud-stored data. This enhancement significantly expands end-to-end encryption, ensuring that the vast majority of your iCloud information remains accessible only by your trusted devices, even from Apple itself.
Unprecedented encryption: Your data, your keys
While Apple’s standard iCloud protection already encrypts data in transit and at rest, Advanced Data Protection takes a monumental leap. By default, Apple retains some encryption keys to assist with data recovery; however, with this new feature enabled, the encryption keys for 25 critical iCloud data categories are held exclusively by your trusted devices. This means that, unlike standard protection, not even Apple can decrypt or access this data, offering a fortified shield against potential cloud breaches or external access demands.
The expanded end-to-end encryption now covers a wide array of sensitive personal information, including:
- iCloud Backup
- Photos
- Notes
- Reminders
- iCloud Drive
- Voice Memos
- Safari Bookmarks
This fundamental shift empowers users with unparalleled data sovereignty, placing the ultimate control directly in their hands.
Eligibility and activation: Securing your digital life
Enabling Advanced Data Protection is a straightforward process, but it requires adherence to specific security prerequisites, reinforcing the feature’s robust design.
- Two-Factor Authentication: Essential for your Apple ID.
- Device Passcodes: All devices linked to your Apple ID must have passcodes or passwords enabled.
- Latest Software: All devices must be running iOS 16.2, iPadOS 16.2, macOS 13.1, watchOS 9.2, tvOS 16.2, HomePod software 16.0, or iCloud for Windows 14.1, or newer versions.
- Recovery Method: Users must set up at least one recovery contact or a 28-character recovery key. This step is crucial, as without it, Apple cannot assist in data recovery if account access is lost.
To enable, simply navigate to Settings > [Your Name] > iCloud > Advanced Data Protection on your iPhone or iPad and follow the prompts. Disabling it is just as easy through the same menu, which securely uploads the necessary encryption keys back to Apple’s servers.
Important considerations for enhanced privacy
While a monumental step forward for privacy, users should be aware of a few key aspects:
- Web Access to iCloud.com: Direct web access to end-to-end encrypted iCloud data via iCloud.com is disabled by default, emphasising device-centric security. It can be temporarily re-enabled via a trusted device.
- Shared Content: For shared content to maintain end-to-end encryption, all participants in the sharing group must also have Advanced Data Protection enabled.
- Exclusions: Certain iCloud data, such as iCloud Mail, Contacts, and Calendars, remain protected by standard encryption, even with ADP enabled.
- Global Context: The feature’s rollout has seen some complexities, notably its temporary withdrawal from the UK market due to governmental requests for data access under specific legislation.
Advanced Data Protection for iCloud represents Apple’s continued dedication to user privacy, offering a powerful tool for individuals to secure their digital footprint in an increasingly connected world.
Subscribe to our Newsletter
Disclaimer: Kindly avoid objectionable, derogatory, unlawful and lewd comments, while responding to reports. Such comments are punishable under cyber laws. Please keep away from personal attacks. The opinions expressed here are the personal opinions of readers and not that of Mathrubhumi.